Security Officer H/F Lengow

🤓 Lengow, an intelligent and automated e-commerce platform :

Lengow is a leader in intelligent e-commerce solutions that help brands and retailers drive profitable growth across the digital shelf. With powerful feed management, global price monitoring, and robust data capabilities, Lengow's comprehensive SaaS product suite enables merchants to amplify product visibility online, outrun competition with informed pricing, multiply sales on marketplaces, and monitor brand presence among distributors. Since 2009, Lengow has fueled digital growth for over 3,600 customers across thousands of marketing and sales channels in over 60 countries.

AsSecurity Officer, you will be responsible for defining, implementing, and continuously improving Lengow's information security strategy. You will ensure the confidentiality, integrity, and availability of our systems and data, while enabling business growth and innovation in a secure-by-design manner.

You will work closely with Engineering, Product, Legal, Compliance, IT, and Leadership teams to manage risks, maintain certifications, and respond effectively to security threats.

You will report to our CTO.

⌨️ Your main tasks would be as follows :

Security Strategy & Governance

• Define and maintain Lengow's global information security strategy and roadmap
• Establish and enforce security policies, standards, and procedures
• Act as the main point of contact for security topics internally and externally
• Report on security posture, risks, and incidents to leadership
• Build and maintain a continuous improvement plan

Risk Management & Compliance

• Identify, assess, and manage security risks across infrastructure, applications, and processes
• Lead and maintain compliance programs (e.g. ISO 27001, SOC 2, GDPR, customer security requirements)
• Coordinate internal and external audits, penetration tests, and risk assessments
• Manage third-party and vendor security assessments

Technical & Operational Security

• Oversee application, cloud, and infrastructure security (GCP/OVH)
• Collaborate with engineering teams to embed security best practices (secure coding, CI/CD, DevSecOps)
• Define and monitor security controls (IAM, logging, monitoring, vulnerability management)

Incident Management

• Own and continuously improve the incident response plan
• Lead or coordinate responses to security incidents and breaches
• Conduct post-incident reviews and drive corrective actions

Awareness & Culture

• Promote a strong security culture across Lengow
• Design and deliver security awareness and training programs
• Support teams with pragmatic, business-oriented security guidance

Support the Sales and Sales Engineering teams for Security Topics

• Adapt internal documentation to make it ready for RFI and RFP processes
• Participate in security calls with prospects and customers

Technical environment:

• Actual Tools : Knowbe4/ Wazuh (OVH)/ Cloudarmor (GCP)/ CyberVadis

🪜 Hiring Process :

• Phone call with Alexandre our HR
• Interview with Clément our VP engineering and Clément one of Engineering manager
• Technical discussion with Clément and Olivier our CTO
• Offer letter